[service] remove explicit systemd security features

Running this service definition as a user service was failing due to these restrictions. Disable them for now to have keep the service working,
stendler · Feb 29, 2024 · b4316a1 · b4316a1
1 parent 2e2cc0f
commit b4316a1
Showing 1 changed file with 4 additions and 4 deletions.
diff --git a/container-check-update.service b/container-check-update.service
@@ -18,10 +18,10 @@ ExecStart=/usr/bin/podman run --rm \
 SuccessExitStatus=0 2
 
 # Hardening
-ProtectSystem=full
-PrivateTmp=true
-MemoryDenyWriteExecute=true
-NoNewPrivileges=true
+#ProtectSystem=full
+#PrivateTmp=true
+#MemoryDenyWriteExecute=true
+#NoNewPrivileges=true
 
 [Install]
 WantedBy=podman-auto-update.service